IT Audit ServicesIndependent and objective review of your IT infrastructure
Certified IT Auditors
Our IT Audit services provide an independent and objective review of IT infrastructure, control configuration, and regulatory compliance through in-depth testing and expert analysis. GraVoc’s auditors maintain a number of professional certifications including Certified Information Systems Auditor, Certified Information Security Manager, Certified Information Systems Security Professional, Certified in Risk and Information Systems Control, Microsoft Certified Professional and Certified Ethical Hacker. Our IT Audit service area expands throughout Massachusetts, Southern New Hampshire and New England.
IT Audit Services Include…
Information Technology Audit
This audit is an examination of the controls within an organization’s IT infrastructure. During the IT audit process, GraVoc Auditors evaluate the overall effectiveness of our client’s IT control environment to ensure these controls are properly configured to preserve the availability, confidentiality, and integrity of mission-critical systems and data.
The audit scope depends primarily on the size and scope of the client’s operation and the specific needs of the client. The project manager and auditors work directly with the client to ensure cost-effective and timely delivery of our auditing services.
IT General Controls Audit
This audit is an examination of the proactive/protective controls, the detective controls, and the reactive/corrective controls within an organization’s IT infrastructure.
During the IT controls audit process, GraVoc IT Auditors collect and evaluate evidence of the client’s information systems controls, policies and procedures, and other related documentation to ensure the availability, confidentiality, and integrity of mission-critical systems and data.
Compliance Gap Analysis
The compliance review is an examination of existing controls, procedures, and policies against industry best practices and industry regulations surrounding cybersecurity and information security.GraVoc’s compliance review services help organizations determine their adherence to established state, federal, and industry guidelines.
GraVoc also provides a report identifying gaps and prioritizing areas of improvements, and providing solutions on how to bring the organization into compliance.
Our IT Auditors Hold Numerous Certifications Including..
Cisco Certified Network Associate Security
Certified Information Security Manager
Certified Information Systems Auditor
Certified in Risk and Information Systems Control
Certified Ethical Hacker
Certified Information Systems Security Professional
EC-Council Certified Incident Handler
Microsoft Certified Professional
Auditors/Independent IT, Gold
Awarded 2011, 2015, 2016
Banking Technology, Silver
Awarded 2015, 2016
IT Audit Service Area
Information Technology Audit Service Area
GraVoc is located in Peabody Massachusetts, just north of Boston, and provides Information Security services including IT Audit, IT General Controls Audit and Compliance Gap Analysis to businesses and organzations in the New England area. GraVoc’s Information Security Auditors hold certifications in CCNA Security, CISM, CISA, CRISC, C|EH, CISSP, and E|CIH. Below is a list of our Massachusetts and New Hampshire IT Audit service area. GraVoc also provides IT Audit services in Connecticut, Maine, Rhode Island and Vermont but are not limited to these states.
Massachusetts IT Audit Service Area:
Acton, Amesbury, Andover, Arlington, Ashby, Ashland, Ayer, Bedford, Belmont, Beverly, Billerica, Boston, Boxborough, Boxford, Burlington, Cambridge, Carlisle, Chelmsford, Chelsea, Concord, Danvers, Dracut, Dunstable, East Boston, Essex, Everett, Framingham, Georgetown, Gloucester, Groton, Groveland, Hamilton, Haverhill, Holliston, Hopkinton, Hudson, Ipswich, Lawrence, Lexington, Lincoln, Littleton, Lowell, Lynn, Lynnfield, Malden, Manchester by the sea, Marblehead, Marlborough, Maynard, Medford, Melrose, Merrimac, Methuen, Middleton, Nahant, Natick, Newbury, Newburyport, Newton, North Andover, North Reading, Peabody, Pepperell, Reading, Revere, Rockport, Rowley, Salem, Salisbury, Saugus, Sherborn, Shirley, Somerville, Stoneham, Stow, South Boston, Sudbury, Swampscott, Tewksbury, Topsfield, Townsend, Tyngsborough, Wakefield, Waltham, Watertown, Wayland, Wenham, West Newbury, Westford, Weston, Wilmington, Winchester, Winthrop and Woburn.
Our Massachusetts IT Audit Service Area Also Includes: Barnstable County, Berkshire County, Bristol County, Dukes County, Franklin County, Hamden County, Hampshire County, Nantucket County, Norfolk County, Plymouth County and Worcester County.
New Hampshire IT Audit Service Area:
Amherst, Andover, Atkinson, Auburn, Boscawen, Bow, Bradford, Brentwood, Candia, Canterbury, Chester, Concord, Danbury, Danville, Deerfield, Derry, Dunbarton, East Kingston, Epping, Epsom, Exeter, Franklin, Fremont, Greenland, Hampstead, Hampton Falls, Hampton, Henniker, Hill, Hooksett, Hopkinton, Kensington, Kingston, Loudon, Lyndeborough, New Castle, New London, Newbury, Newfields, Newington, Newmarket, Newton, Northfield, North Hampton, Northwood, Nottingham, Pembroke, Pittsfield, Plaistow, Portsmouth, Raymond, Rye, Salem, Salisbury, Sandown, Seabrook, South Hampton, Stratham, Sutton, Warner, Webster, Wilmot and Windham.
Our New Hampshire IT Audit Service Area Also Includes: Hillsborough County, Rockingham County and Cheshire County.
Information Security News
The National Security Agency (NSA) has announced that they have joined GitHub as part of their Technology Transfer Program (TTP).read more
Security researchers at Checkpoint have discovered a new malware called “Fireball”. Learn about this new threat and how to tell if you have been affected.read more
On May 31, the FFIEC released an update to its Cybersecurity Assessment Tool (CAT).read more
Contact us below about conducting an IT Audit for your business
GraVoc is a technology-consulting firm located in Peabody, Massachusetts just north of Boston. GraVoc is committed to solving business problems for customers through the development, implementation, and support of technology-based solutions.
"One Company, Many Solutions"